Available for projects

Vincent de Vries

Cybersecurity Specialist

I find the vulnerabilities in your web applications before the bad guys do — and deliver clear, actionable reports.

Get in touch View services
Vincent de Vries
What I do

Services

🔍

Vulnerability Assessment

Systematic scanning and manual testing of your web application to identify security weaknesses before they can be exploited.

🎯

Penetration Testing

Authorised simulated attacks on your systems to test real-world resilience. Includes business logic flaws, authentication and API security.

📋

Security Report

Clear, professional reports with all findings, risk ratings, reproduction steps and concrete recommendations — ready for your development team.

🧾

Code Review

Security-focused review of PHP, JavaScript and web application code. I spot injection risks, broken access control and insecure patterns.

Who I am

About me

I'm Vincent de Vries — a freelance cybersecurity specialist based in Hamburg. My background is in software development and web technologies, which gives me a solid understanding of how applications are built and, more importantly, how they can break.

I work with written authorisation only. Every engagement starts with a clear scope and ends with a professional report your team can actually act on.

Web App Pentesting OWASP Top 10 API Security Business Logic Flaws XSS / SQLi / IDOR PHP / JavaScript Linux / VPS Reporting
Vincent de Vries

"A security audit is like an MOT for your car — you might think everything is fine, but you only really know after someone checks under the hood."

— Vincent de Vries

"We had no idea the vulnerability existed until Vincent showed us exactly how it worked. The report was clear enough that our developer fixed it the same day."

— E-commerce manager, Hamburg

"Most hackers don't announce themselves. Vincent does — and that's exactly the point."

Proven results

Cases

Confidential — Hamburg 2026

Web Application Penetration Test

Authorised penetration test of the Bäderland online ticket shop. Multiple vulnerabilities identified across different severity levels. Full details withheld pending remediation.

Critical severity finding Fixed
High severity findings (×2) Pending
Medium severity findings (×2) Pending

Curious what a full report looks like? View a sample report with fictitious data to see exactly what you'll receive.

View sample report → Download sample report (PDF) ↓
Let's talk

Get in touch

Have a project in mind or want to know if your application is secure? Send me a message and I'll get back to you within one business day.

All engagements require written authorisation from the system owner.

Message sent! I'll be in touch soon.